The value of the Name Qualifier is the security or administrative
domain that qualifies the name of the subject. This provides a means
to federate names from disparate user stores while avoiding the
possibility of subject name collision.

For more information about this attribute, see the description of
the getNameQualifier method on the following
interface:

The time factor you can use to allow the Credential Mapping
provider to compensate for clock differences between the Identity
Provider and Service Provider sites.

The value is a positive or negative integer representing seconds.
Default value is -5.

Normally, an assertion is valid from the NotBefore time, which
defaults to (roughly) the time the assertion was generated, until the
NotOnOrAfter time, which is calculated as (NotBefore + TimeToLive).
This value is a positive or negative integer indicating how many
seconds before or after "now" to which the assertion's NotBefore
should be set. If you set a value for DefaultTimeToLiveOffset, then
the assertion lifetime is still calculated as (NotBefore +
TimeToLive), but the NotBefore value is set to (now +
TimeToLiveOffset). As a result, an assertion might have a two minute
(120 second) lifetime that starts thirty seconds ago, or starts one
minute from now.

For more information about this attribute, see the description of
the getDefaultTimeToLiveOffset method on the following
interface: